CESA-2017:0352 -- centos 6 qemu-kvm,qemu-guest-agentID: oval:org.secpod.oval:def:204447 | Date: (C)2017-03-02 (M)2023-12-07 |
Class: PATCH | Family: unix |
Kernel-based Virtual Machine is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM. Security Fix: * Quick emulator built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access issue. The issue could occur while copying VGA data in cirrus_bitblt_cputovideo. A privileged user inside guest could use this flaw to crash the QEMU process OR potentially execute arbitrary code on host with privileges of the QEMU process
Product: |
qemu-kvm |
qemu-img |
qemu-guest-agent |